Contract: 6 months (Likely Extensions) Rate: Up to £550 per day (Outside IR35) Location: Remote We are looking for an experienced Azure IDAM Engineer with expertise in Azure Active Directory (Entra ID), Privileged Identity Management (PIM), and CyberArk. This role is critical in ensuring security, governance, and automation of identity and access controls across a multi-site, enterprise-scale environment. The ideal candidate will have hands-on experience in mergers and acquisitions (M&A) where identity integration, domain consolidation, and hybrid identity management were key. Key Responsibilities: Design, implement, and manage Azure AD identity solutions across multi-site environments. Configure and govern Privileged Identity Management (PIM) for secure role-based access. Work with CyberArk for privileged account management. Enforce Zero Trust security principles and least privilege access using Azure RBAC. Manage identity integrations for mergers, acquisitions, and divestitures. Automate identity lifecycle management and access provisioning. Implement and maintain Conditional Access Policies (MFA, risk-based authentication). Support and improve hybrid identity environments (Azure AD & on-prem Active Directory). Monitor and audit privileged access usage, compliance, and security events. Key Skills & Experience: ✅ Azure AD / Entra ID, Active Directory (multi-site, domain trusts, forest migrations) ✅ Privileged Identity Management (PIM) & RBAC governance ✅ CyberArk or other Privileged Access Management (PAM) tools ✅ Experience in M&A identity integration and migrations ✅ Azure Security Controls (Conditional Access, MFA, Managed Identities, Key Vault) ✅ Infrastructure as Code (Bicep) for IDAM automation ✅ SIEM & Logging (Taegis, Sentinel, Log Analytics, ELK) ✅ Scripting (PowerShell, Bash, Az CLI) for automation ✅ Knowledge of GDPR, ISO 27001, and compliance frameworks Desirable Experience Experience with Microsoft Defender for Identity Azure DevOps - CI/CD YAML pipelines